#136 [rng-tools] Allows user to point HRNGDEVICE to /dev/random or /dev/urandom

important
open
nobody
None
5
2013-05-16
2013-05-16
Aaron Peschel
No

rng-tools allows the user to point HRNGDEVICE to /dev/random/ or /dev/urandom, creating a very questionable RNG loop. There is no documentation explicitly telling users that this is a bad idea, and there are examples of people suggesting this practice with no indication of its badness.

http://www.howtoforge.com/helping-the-random-number-generator-to-gain-enough-entropy-with-rng-tools-debian-lenny
http://www.chrissearle.org/blog/technical/increase_entropy_26_kernel_linux_box

Not sure if it would be best to explicitly block /dev/*random as the rng-tools input, or issue a warning of some kind, or something else entirely.

Discussion